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DETAILED ACTION 

1. This action is responsive to the communication filed on April 14, 2004. 
Claims 1-28 are pending. At this time, claims 1-28 are rejected. 

Claim Rejections - 35 USC § 101 

2. 35 U.S.C. 101 reads as follows: 

Whoever invents or discovers any new and useful process, machine, manufacture, or 
composition of matter, or any new and useful improvement thereof, may obtain a patent therefor, subject to the 
conditions and requirements of this title. 

3. Claims 10-28 are rejected under 35 U.S.C. 101 because the claimed 
invention is directed to non-statutory subject matter. 

a. Referring to claim 22: 

Claim 22 recites "a computer program stored on a computer- 
readable medium, the program comprising instructions for: quantifying damages 
avoided by one or more blocked attacks; and calculating -security protection 
consumption during a period of time." The claim is clearly a software program and it is 
non-statutory as not being tangibly embodied in a, manner so as to be executable. 
Furthermore, applicant has pointed out in the specification (paragraph [0012] of page 4) 
that the computer readable medium may comprise a disk, a device, and/or a 
propagated signal, which clearly including intangible media such as signals, carrier 
waves, transmissions, optical waves, transmission media or other media incapable of 
being touched or perceived absent the tangible medium through which they are 
conveyed. Therefore, claim 22 recites a non-statutory subject matter. 

Claims 23-28 are depended on claim 22, thus they are rejected with 
the same rationale applied against claim 22 above. 

b. Referring to claim 10: 

I This claim has limitations that is similar to those of claim 22, 
thus it is rejected with the same rationale applied against claim 22 above. 

Claims 11-15 are depended on claim 10, thus they are 
rejected with the same rationale applied against claim 10 above. 

c. Referring to claim 16: 
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i. This claim has limitations that is similar to those of claim 22, 
thus it is rejected with the same rationale applied against claim 22 above. 

Claims 17-21 are depended on claim 16, thus they are 
rejected with the same rationale applied against claim 16 above. 

Claim Rejections - 35 USC § 102 

4. The following is a quotation of the appropriate paragraphs of 35 
U.S.C. 102 that form the basis for the rejections under this section made in this Office 
action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351(a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21(2) 
of such treaty in the English language. 

5. Claims 1-28 are rejected under 35 U.S.C. 102(e) as being anticipated by 
Liang (US 7,062,553 B2). 

a. Referring to claim 1: 

i. Liang teaches a network security apparatus comprising: 

(1) a billing server configured to calculate security 
protection consumption during a period of time by quantifying damages avoided by one 
or more blocked attacks (see abstract; column 2, lines 34-44; column 11, lines 7-20 
of Liang). 

b. Referring to claim 2: 

i. Liang further teaches: 

(1) wherein calculating security protection consumption 
further includes determining whether a blocked attack would have exploited a network 
vulnerability (column 9, lines 1-11 of Liang). 

c. Referring to claim 3: 

i. Liang further teaches: ■ 
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(1) wherein determination if a blocked attack would have 
exploited network vulnerability is determined by replaying the attack on the internal 
network (e.g., LAN) (column 9, lines 1-11 of Liang). 

d. Referring to claim 4: 

i . Lia ng f u rthe r teaches: 

(1) further comprising a scanner configured to scan one 
or more devices for vulnerabilities (column 10, lines 22-31 and 51-63 of Liang). 

e. Referring to claim 5: 

i. Liang further teaches: 

(1) wherein the scanner is configured to quantify the risk 
of one or more devices (column 11, lines 7-20 of Liang). 

f. Referring to claim 6: 

i. Liang further teaches: 

(1) wherein the scanner is located within a customer 
network (column 10, lines 51-63 of Liang). 

g. Referring to claim 7: 

i. Liang further teaches: 

(1) further comprising an intrusion suppression module 
configured to block attacks (column 2, lines 40-44; column 7, line 66 through 
column 8, line 2 of Liang). 

h. Referring to claim 8: 

i. Liang further teaches: 

(1) wherein the intrusion suppression module is 
configured to maintain a list of attacks sustained and blocked during a period of time 
(column 6, lines 56-67; column 2, lines 34-44; column 11, lines 7-20 of Liang). 

i. Referring to claim 9: 

i. Liang further teaches: 

(1) wherein the intrusion suppression module is located 
outside (e.g., remote location) a customer network (column 9, lines 5-7 of Liang), 
j. Referring to claims 10-15: 
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i. These claims consist a network security method to 
implement from the network security apparatus of claim 1, thus they are rejected with 
the same rationale applied against claims 1-9 above, 
k. Referring to claims 16-21: 

i. These claims have limitations that is similar to those of 
claims 1-9, thus they are rejected with the same rationale applied against claims 1-9 
above. 

I. Referring to claims 22-27: 

i. These claims consist a computer program stored on a 
computer-readable medium to implement by the network security method of claim 10 
from the network security apparatus of claim 1, thus they are rejected with the same 
rationale applied against claims 1-9 above. 

m. Referring to claim 28: 

i. Liang further teaches: 

(1) wherein the computer-readable medium comprises 
one or more of a memory module, a disk, a device, and a propagated signal (column 
1, line 60; column 2, line 50 of Liang). 

Conclusion 

6. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

a. Cohen et al (US 6,952,779 B1) discloses system and method for 
risk detection and analysis in a computer network (see Title). 

b. Shostack et al (US 6,298,445 B1) discloses computer security (see 

Title). 

Any inquiry concerning this communication or earlier 
communications from the examiner should be directed to Thanhnga (Tanya) Truong 
whose telephone number is 571-272-3858. 

If attempts to reach the examiner by telephone are unsuccessful, 
the examiner's supervisor, Kim Vu can be reached at 571-272-3859. The fax and 
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phone numbers for the organization where this application or proceeding is assigned is 
571-273-8300. 

Any inquiry of a general nature or relating to the status of this 
application or proceeding should be directed to the receptionist whose telephone 
number is 571-272-2100. 

TBT AuZ/3S 
June 20, 2007 



